Re: Blocked BAD-HEADER

I just found out why I may be not getting some reports from a service I am paying for: Sep 26 18:45:25 z9m9z amavis[1017]: (01017-11) Blocked BAD-HEADER, [31.170.123.1 34] [207.38.86.27] -> , M essage-ID: <20180926184510_3419...@webchaver.org>, mail_id: 9nRpQDcZqcXK, Hits: -, size:

ANNOUNCE: amavisd-new-2.11.1 released

A release 2.11.1 of amavisd-new now is available at: https://amavis.org/amavisd-new-2.11.1.tar.bz2 Release notes are at: https://amavis.org/release-notes.txt amavisd-new-2.11.1 release notes - removed a trailing dot element from @INC, as a workaround for a perl vulnerability

ANNOUNCE: Amavis project handed over to new project leaders

Greetings all the patient attendees of this ML and users of Amavis, I'll skip my apologies for being unresponsive for the past two years, there's not enough room in this mail message :) My interests, duties and priorities have shifted, and amavisd was running smoothly at our site (still is), so

Re: spam_kill_level_maps

@sa_tag2_level_maps = ( { 'adre...@example.com' => 3.0, 'adre...@example.com' => 3.0, }, \$sa_tag2_level_deflt, ); Yes, same principles. Hm, the above gave me: Error in config file "/usr/local/etc/amavisd.conf": Global symbol "@sa_tag2_level_maps" requires explicit package name

Re: how to keep/add sender IP in Amavisd antivirus "INFECTED" discard notice?

Jason, I have Amavis set up to do A/V scanning as a prequeue filter. It's configured to DISCARD virus-tagged content. It works , detecting + discard as intended. I want to run fail2ban over the logs to identify the IP of the Virus sender, and set a firewall block for awhile. But if you look

Re: spam_kill_level_maps

The hash-type lookup does not support delayed dereferencing. You should use one of the following two variants: @spam_kill_level_maps = ( { 'adre...@example.com' => 4.0, 'adre...@example.com' => 4.0, 'adre...@example.com' => 4.0, '.' => $sa_tag_level_deflt, }, ); or

ANNOUNCE: amavisd-new-2.11.0 released

A release 2.11.0 of amavisd-new now is available at: https://www.ijs.si/software/amavisd/amavisd-new-2.11.0.tar.xz Release notes are at: https://www.ijs.si/software/amavisd/release-notes.txt amavisd-new-2.11.0 release notes Contents: DEPRECATION NOTICE COMPATIBILITY BUG FIXES

Re: final_virus_destiny D_REJECT

Rob McKennon wrote: Hello, We are setting up Amavis and Clamav to detect credit cards coming into our email, and it's working. However, it's returning the original email to the sender, which also contains the credit card numbers. Receiving the credit card numbers is bad enough, sending them

Re: spam_kill_level_maps

On 2016-04-26 00:28, Per olof Ljungmark wrote: We would like to have a different kill level for a couple of users, not sure how to do that properly. Tried $sa_kill_level_deflt = 5.2; # triggers spam evasive actions @spam_kill_level_maps = ( { 'adre...@example.com' => 4.0,

RE: Banning .docm gives misleading error message

On 2016-04-26 18:48, Kai Risku wrote: I *do* think the solution is to check both leaf and non-leaf nodes as my proposed fix does. Then the administrator can freely apply banning rules on leaf or non-leaf nodes just as he prefers. You are however correct when saying this is more of a reporting

Re: Will amavisd work with redis+dynomite?

On 2016-03-27 00:13, Tom Johnson wrote: We're looking at using dynomite (the netflix opensource project that adds a dynamo layer for sharding and replication to redis). There's one limitation I've read about, and I'm not sure if it's an issue for the lua scripts that amavisd-new uses for

Re: Multiple Amavis Instances on reliable Redis

Marc Patermann wrote: the current setup is two Postfix MX servers for in- and outgoing mail. amavis and SpamAssassin use a single MySQL database (SPOF). While updating hard- and software we want to change to Redis instead of MySQL. The Redis data should be the same for both MX servers. To

Re: False positives "text/plain,.exe"

On 2016-04-26 17:46, Mark Martinec wrote: Your sample (decoded and given to a file(1) utility) here reports: Python script, Non-ISO extended-ASCII text executable and an entry in the @$map_full_type_to_short_type_re list matches /\bexecutable\b/i, returning the '.exe': [qr/\bexecutable\b

Re: False positives "text/plain,.exe"

Tilman Schmidt wrote: On our mailserver, Amavis is quarantining a lot of mails claiming that they contain a banned attachment of type "text/plain,.exe" even though, when inspecting the quarantined mail, they turn out not to contain any attachment at all, not even an image or signature, just

RE: Banning .docm gives misleading error message

On 2016-04-05 10:21, Kai Risku wrote: We also have ClamAV blocking all files containing OLE2 Macros, so I am going for a belt-and-suspenders type of approach… Regardless of the effectivity of blocking certain types of files or not, my main point for posting was the inability of amavis to

Re: subject line not prefixed

On 2016-04-26 13:42, Michael H wrote: Hi Mailing list owner, Could you amend the configuration for the mailing list to include something in the subject line, like maybe [amavis-users]? Modifying a Subject by a mailing list invalidates original DKIM signatures, so it is undesirable. Either

Re: Possible bug for fix in 2.11.0: null sender in releasing email from sql quarantine

On 2016-04-05 12:45, Tobias wrote: I also ran into this issue while configuring amavis. I use 2.10.1, and this code is unchanged in 2.11.0. If SQL is specified as the quarantine method then variable $mailfrom_to_quarantine has no impact on headers or envelope. And also if X-Envelope-From is not

Re: How to specify different policies for different unix sockets?

Hamy, Hi, i would like to use unix socket instead of inet in amavisd for postfix to communicate with it and then secure it by setting appropriate permissions. However, i dot not want to disable the default AM.PDP-SOCK policy which is required for amavisd-release and maybe other scripts(and

Re: variable expansion not working in $myauthservid definition?

On 2016-04-07 20:37, jaso...@mail-central.com wrote: On Thu, Apr 7, 2016, at 11:10 AM, A. Schulze wrote: use double quotes to allow variable expansion. single quotes force use as literal string as you see... -> $myauthservid = "amavisd.${$mydomain}"; If I switch my

Re: Amavis keeps re-initialising

On 31/03/16 00:51, Julian Pilfold-Bagwell wrote: Hi All, I have amavisd-new, clamav and spamassassin running alongside postfix and cyrus and I have a situation where restarting amavisd using systemctl doesn't exit you to the command prompt, it just waits for ages before failing and prints the

Re: [2.11.0rc1 PATCH] do_7zip: Handle completely encrypted archives

On 2016-04-14 17:59, Thomas Jarosch wrote: 7zip has two modes for encrypted archives: - Visible file index, the contained file can be encrypted - Complete encrypted archive including the file index Signed-off-by: Thomas Jarosch --- amavisd 2016-04-14

Re: malware with BAD HEADER, MIME error not blocked

On 2016-03-31 11:54, MI wrote: There seems to be a wave of malware emails for which Amavis complains about a bad header, and then apparently skips the attachment scanning. So the mail goes through. This is the header which Amavis adds to the email: X-Amavis-Alert: BAD HEADER SECTION, MIME

ANNOUNCE: amavisd-new-2.11.0-rc1 release candidate is available

A release candidade RC1 of the coming version 2.11.0 of amavisd-new is available at: https://www.ijs.si/software/amavisd/amavisd-new-2.11.0-rc1.tar.xz Release notes are at: https://www.ijs.si/software/amavisd/release-notes.txt Please try it out, feedback is welcome. amavisd-new-2.11.0

Re: Update map_full_type_to_short_type_re

Jörg Backschues wrote: how can I update the map_full_type_to_short_type_re table with new file types (e.g. Microsoft Word 2007+) without modifying the table in the orignal amavisd-new script? What's your recommendation? Something like the following should do:

Re: no such user

Try from a command line: $ perl -le 'my($user,$pwd,$uid,$gid)=getpwnam("vscan"); print $user//"UNKNOWN"' LuKreme wrote: Prints UNKNOWN. Now what? Sorry,meant to add FreeBSD 10.2 and amavis freshly reinstalled from ports following a freebsdupdate. /usr/sbin/pwd_mkdb -p

Re: no such user

@lbutlr wrote: # amavisd drop_priv: No such username: vscan # grep vscan /etc/* /etc/group:vscan:*:110: /etc/master.passwd:vscan:*:110:110::0:0:Scanning Virus Account:/var/maiad:/bin/sh /etc/passwd:vscan:*:110:110:Scanning Virus Account:/var/maiad:/bin/sh Binary file /etc/pwd.db matches Binary

Re: Upcoming Release: feature Request

Mark Martinec: AuthServID by itself is not good enough, such header field must also belong to a set of trusted fields. SpamAssassin solves the problem of determining which header fields can be trusted by settings trusted_networks / internal_networks / msa_networks. Patrick Ben Koetter: How

Re: Upcoming Release: feature Request

@lbutlr: How does amavis know if you removed the spammer headers and added your own? Andreas Schulze wrote: It has to trust the administrator does a good job :-) Each A-R header include an AuthServID (a hostname generating the A-R header) Any A-R header consumer must know these

Re: 7z archives with encrypted content

On 2014-12-02 13:36, Markus Benning wrote: Hello, amavis currently fails to handle 7z files with encrypted content. To reproduce create a 7z file with encrypted content: $ 7z a -ppass enc.7z /etc/hosts This will result in amavisd logging the following error: Dec 2 10:14:41 xxx

Re: Disable SSLv3 an select ciphers in amavis

Marc Grooz wrote: is there a way to disable SSLv3 and control witch ciphers amavis use? On 2015-03-23 09:07, Markus Benning wrote: The quick and dirty way is to set it in the amavisd source code. Try: [...] The better way would be to add configuration options for this parameters to

Re: [patch] macro report_json_filtered

On 2014-12-04 15:30, Markus Benning wrote: Hello, the attached patch adds a log macro report_json_filtered to amavisd. This macro is like report_json but will remove all specified fields from the output. Example: $logline_maxlen = ( 32*1024 ) - 50; # 32k max message size, keep 50 bytes for

RE: Running amavisd-new on MX hosts?

Dino Edwards wrote: E-mail should never be quarantined unless there is a mechanism for the recipient to release those messages from quarantine themselves. You never want to be responsible for an e-mail NOT reaching its intended recipient. People get very upset when they don't receive e-mail they

Re: Amavis 2.10.1 dies and is unusable when put under moderate load

Quanah, Again, the only difference is 2.9.0 vs 2.10.1. I.e., we used the same uulib library in 2.9.0 without these issues. Unless do_ascii was modified between 2.9.0 and 2.10.1 to add uulib checks, this doesn't seem like it would be the source. I will go and remove it however, since it is

Re: Amavis 2.10.1 dies and is unusable when put under moderate load

The change log to Convert::UUlib 1.50 shows: Revision history for Perl extension Convert::UUlib. 1.5 Sat Jul 11 03:56:06 CEST 2015 - fix a heap overflow (testcase by Krzysztof Wojtaś). - on systems that support it (posix + mmap + map_anonymous), allocate all dynamic areas via mmap

Re: New to custom hooks

Scott Fertig wrote: I've gotten past my original issues, now I am much further along, I also forgot to mention that I am working with amavis 2.9. The remaining issue I have is that I am trying to get the body of the message if a subject matches a variable I have set in my custom hook. It

Re: Access @detecting_scanners from custom hook

Georg Lindner wrote: I'm trying to access @detecting_scanners from the custom hook "checks" without luck... I really have no plan how to do it, and can't find any example. Any perl gurgu out there who can tell me if this is possible? And if it is possible, how to achieve this... It lives in

Re: New to custom hooks

Scott Fertig wrote: I've gotten past my original issues, now I am much further along, I also forgot to mention that I am working with amavis 2.9. The remaining issue I have is that I am trying to get the body of the message if a subject matches a variable I have set in my custom hook. It

Re: Negative repeat count does nothing...

Alex, Hi, Since upgrading my system to amavisd-new-2.10.1 and perl-5.22.1 on fedora23, I've been receiving the following warnings from amavis: Jan 19 09:52:45 mail03 amavis[3843]: (03843-03) _WARN: Negative repeat count does nothing at /usr/sbin/amavisd line 16408. Is this a known problem? It

Re: Amavis 2.10.1 dies and is unusable when put under moderate load

Quanah, We recently updated to Amavisd 2.10.1 from 2.9.0 internally, and have found that amavisd constantly dies while processing messages after being put under a moderate load in our QA environment. Jan 19 06:57:52 zqa-211 amavis-services[18544]: PID 13724 went away, 13724-01 The process

Re: ANNOUNCE: amavisd-new-2.10.0 has been released

Jim, I get these errors Oct 24 20:01:27.131 server1.art-domains.de /usr/sbin/amavisd-new[10900]: (10900-01) (!!)TROUBLE in check_mail: gen_mail_id FAILED: Undefined subroutine Amavis::Out::SQL::Log::mail_addr_idn_to_ascii called at (eval 113) line 220. what wrong do I make? Did I forget

Re: ANNOUNCE: amavisd-new-2.10.0-rc2 release candidate is available

Alex, Just for the record: if you make 2.10.0 final in the next few days we would make it for Debian Jessie (freeze is coming soon). That would be very nice, it's doable, will keep it in mind. I think the RC2 is pretty much it. I hope to get some more feedback from early testers the

Re: amavis redis

Phil, Have tried to enable redis pen pals support, with amavis 2.9.1, using the following: @storage_redis_dsn = ( { server = '172.30.10.20:6379', db_id = 1 }, ); @ip_repu_ignore_networks = qw( 172.30.10.0/24 ); but when I restart amavis I receive the error: (!)save_info_final failed,

Re: Penpal configuration help

Phil, am very new to Amavisd-new and struggling with how to get penpals working. I have two MX which are sharing a common redis database. At present in amavisd.conf the following is set: $policy_bank{'MYNETS'} = { # mail originating from @mynetworks originating = 1, # is true in MYNETS by

Re: Penpal configuration help

Phil, Hmmm, this is a little confusing then. Postfix is set to forward via LMTP on tcp/10024 and in amavisd.conf I have: $interface_policy{'10024'} = 'POLICY-IN'; $policy_bank{'POLICY-IN'} = { originating = 0, bounce_killer_score = 1, penpals_bonus_score = 1, }; and from the internal

Re: JSON logging, to Splunk

into a single stream, which involves locking or some other approach (e.g. message passing). Also some queuing is desired to decouple feeders from consumers. Using a file as an intermediate medium to feed Splunk seems like a poor choice. 2014-10-05 20:17, Jernej Porenta wrote: a while ago, Mark Martinec

Re: MIME Types

Deeztek Support writes: I guess I was mistaken that using the mime-type was more reliable than using a file extension since the file extension can be easily modified also? So, if I were to ban .rar files, and someone send me a rar file called archive.rar but they renamed it to archive it will

Re: MIME Types

Deeztek Support, According to the amavis docs, amavis checks MIME types of decoded mail parts where the content classifications are provided by a file(1) utility. Not really. The MIME type is obtained directly from a Content-Type header or sub-header field of each mail part. The file(1)

Re: Enabling Bayesian filter with amavisd-new + Spamassassin

David, I posted the following message on ServerFault several days ago, but since it has gotten very little attention, I thought I would ask on this mailing list. I'm trying to figure out a few things: 1) If SpamAssassin is configured properly and I'm editing the proper config files 2)

Re: false positive : BANNED contents (text/plain,.exe)

Alexandre, The attached email was rejected by amavis whereas it's perfectly legitimate and with no attachment (plain text email send to the Dovecot mailing list). My amavis setup is working fine for monthes and it's the first time I'm see a false positive. Can you help to find if it's a bug or

Re: ANNOUNCE: amavisd-new-2.10.0-rc1 release candidate is available

Ralf, Seems to work like a charm here. Thanks for trying it out! Pascal, do you think you may have some time for the other message releasing issue (Quarantined messages: missing X-Envelope-From header)? http://lists.amavis.org/pipermail/amavis-users/2014-September/003121.html Would be

ANNOUNCE: amavisd-new-2.10.0-rc1 release candidate is available

A release candidade RC1 of the coming version 2.10.0 of amavisd-new is available at: http://www.ijs.si/software/amavisd/amavisd-new-2.10.0-rc1.tar.xz Release notes are at: http://www.ijs.si/software/amavisd/release-notes.txt amavisd-new-2.10.0 release notes Contents: COMPATIBILITY

Re: banned MIME type

Tejas, I want to know how Amavis checks the MIME type of attachment? Does it rely upon the name declared in mail body or it uses 'file' utility. I read somewhere that it uses file utility. The MIME type (as checked by banning rules) comes from Content-Type header fields and sub-header fields

Re: [amavisd-new PATCH] Improve toc parsing for cabextract

Thomas, These errors were logged by amavisd-new: amavis[2643]: (02643-05) (!)do_cabextract: can't parse toc line: File size | Date Time | Name amavis[2643]: (02643-05) (!)do_cabextract: can't parse toc line: All done, no errors. Testing cabextract manually showed this output:

Re: error with amavisd-release with SQL-storage

Stef, I noticed that there is an error with the AM.PDP-protocol for releasing quarantined messages in SQL storage Some browsing though the code learns me that this is probably because of a naming change from $msginfo-mail_id to $msginfo-parent_mail_id. You are quite right. A bug indeed.

Re: Can not release email from SQL quarantine with new stable version 2.9.1

Stef Simoens wrote: I had the same problem with 2.9.0 See my post on http://lists.amavis.org/pipermail/amavis-users/2014-June/002957.html for a patch. Works in my 2.9.0 installation. As this has not been addressed yet, I'm holding off upgrading (and I didn't re-patch bc the updates to 2.9.0 I

Re: [PATCH] replace call to file(1) with libmagic

Patrick, I threw this onto one of my servers to test, and it was working ok. I went ahead and threw in onto 3 large production servers. So far no issues. I'll follow up if I get some crashs or something. Thanks. Works fine here as well. Did compare timings over a couple of hours, and a

Re: $os_fingerprint_method and multiple servers

Ben, i was using 2.7.1. shamefully, i was ignorant as to how old that was. i've upgraded to 2.9.1, and that issue seems to be resolved. using $os_fingerprint_method = p0f:*:$p0f_analyzer_port;, i now see queries hitting p0f-analyzer on both mail servers. however, the following is now being

Re: $os_fingerprint_method and multiple servers

Ben, thanks for this. if set the following: my $p0f_analyzer_port = '10032'; $os_fingerprint_method = p0f:*:$p0f_analyzer_port; amavis logs this message: Jul 14 15:56:34 mfa amavis[5329]: (05329-04) (!!)TROUBLE in check_mail: os_fingerprint FAILED: Fingerprint bad IP address:

Re: need help finding origin of timeout

Patrick, I'm using Amavisd-new for years with success on MX servers @work, but few days ago I've noticed few timeouts during email reception. I'm using Postfix 2.10.0 and amavisd-new-2.8.0_2 on FreeBSD, in before queue content filtering. The timeout occurs only for two different

Re: dkim signature Failure Reporting

Andre, anyone knows why signature flag r=y does not appear in amavisd-new latest version? Refering to RFC6651 and line 31643-31646 from amavisd # signature options (parenthesized options are set automatically; # the RFC 6651 (failure reporting) added a tag: r=y) : #

Re: defang_spam possible?

Andreas, I like to defang a message that are marked as spam using postfix - amavisd-milter - amavisd-new. I tried all the settings from http://lists.amavis.org/pipermail/amavis-users/2012-February/001222.html without success. There is no altermime installed. Is defanging impossible while

Re: Clarificaition on configuration.

ANANT S ATHAVALE wrote: If amavisd.conf does not contain the following statement @viruses_that_fake_sender_maps = (); and global configuration has $final_virus_destiny = D_BOUNCE As per my understanding, bounces should get generated. This is the way, it was configured in my setup

Re: redis problems

Christian, Jul 5 10:59:57 mx amavis[26363]: (26363-02) (!!)TROUBLE in check_mail: redis_ip_repu FAILED: Can't use string (OK) as an ARRAY ref while strict refs in use at (eval 132) line 484, GEN44 line 8. — Not sure what that means That's strange. Looks like a redis status reply,

Re: Virus notification to internal sender.

ANANT, I have enabled PUA in ClamAV. Sometimes our employees send PDF documents to internal users and it gets detected as PUA and the recipient gets a message that VIRUS PUA was found and hence blocked. I want to enable notification to internal sender also along with recipeint (the email id

Re: BANNED contents (.image, .png, image001.png) in mail FROM [192.0.2.0]:48963

ben, i'm getting the following notifications: Subject: BANNED contents (.image,.png,image001.png) in mail FROM [192.0.2.0]:48963 No viruses were found. Banned name: .image,.png,image001.png Content type: Banned Internal reference code for the message is 07049-20/tsuDhcN5qlnc [...] The

Re: sa_local_tests_only in policy bank

Carsten, Hi, i am using amavisd-new 2.7.1-2 on debian wheezy. After adding $sa_local_tests_only = 1 to my policy-bank, i see the following error message: Jun 30 12:41:20 my-mailserver amavis[25175]: () (!)loading policy bank AUTH: unknown field 1 Jun 30 12:41:20 my-mailserver amavis[25175]:

Re: Problem with mysql postfix backend with amavisd

Richard, We have an issue with our mailrelay system. Amavisd with spamassassin. Backend is Postfix with HASH db and mysql database. When the mail starts coming in, everything looks fine, but after a few minutes we see a lot of these errors. -- Main.cf : Works

Re: unrar-5 patch

amavis17, I would like to contribute a patch to correctly parse the output of unrar v5. Without this, mail with rar attachments arrive as ***UNCHECKED*** and in the logs are found lines like this: amavis[18309]: (18309-18) (!)do_unrar: can't parse info line for ... The output of unrar v

Re: Bad headers not bouncing

Bruce Pennypacker wrote: I just set up amavisd 2.9.0 on a CentOS server running postfix 2.6.6. For the most part things appear to be working properly, however I'm having an issue where spams with a bad header are making it through. We resolved this issue with Bruce offline, the rest is

ANNOUNCE: amavisd-new-2.9.0 has been released

The version 2.9.0 of amavisd-new has been released and is available at: http://www.ijs.si/software/amavisd/amavisd-new-2.9.0.tar.xz http://www.ijs.si/software/amavisd/amavisd-new-2.9.0.tar.bz2 Release notes are at: http://www.ijs.si/software/amavisd/release-notes.txt There are no

Re: Amavisd routinely fails to correctly tag Spam via SpamAssassin calls

Quanah, If not, try turning it on: it makes SpamAssassin run in a forked subprocess, which takes more memory, but isolates catastrophic failures in SpamAssassin from taking down the amavisd process. Ok, I don't currently do that but can give it a try. But first check for any process

Re: DKIM keys stored in sql?

Tom, We would like to provide DKIM signing for a large number of customer domains (many thousand) - loading them from the conf file isn't very practical. We prefer to load them from a sql table. We are currently using opendkim for this purpose, but would prefer to consolidate this into

Re: DKIM keys stored in sql?

Quanah Gibson-Mount wrote: Thankfully, OpenDKIM was built to use LDAP for DKIM keys, and does so quite well. I use it rather than amavis for signing for this very reason. Just not to forget that a milter is invoked early by an MTA, before any of MTAs mail header normalization is performed

Re: Bug fix: Only try to find decoder for zip, 7z once

Quanah, Currently at startup, Amavis tries to find a decoder for 7z and zip extensions twice: -[[qw(7z zip gz bz2 Z tar)], +[[qw(gz bz2 Z tar)], Thank you, will get that into the final 2.9.0. Mark

Re: Error reported by amavis 2.8.0 on shutdown

Quanah, _WARN: \t(in cleanup) Undefined subroutine Amavis::LDAP::Connection::do_log_safe called at (eval 101) line 76 during global destruction. This seems to come from this portion of the Amavis::LDAP::Connection object: sub DESTROY { my $self = shift; local($@,$!,$_);

Re: perl-ldap-0.52 breaks Amavis

Quanah, The changes in inet6 handling somewhere between Net::LDAP 0.44 and Net::LDAP 0.52 breaks Amavis' ability to talk to LDAP. The problem is specifically this bit: my $domain = $arg-{inet4} ? AF_INET : ($arg-{inet6} ? AF_INET6 : AF_UNSPEC); If I comment out these two lines, connections

Re: RFC: handle UNCHECKED more precisely

On 2013-04-25, Carsten Wolff wrote: currently, all mail that - contains a mailbomb - contains encrypted parts - contains any other undecipherable parts falls under content category UNCHECKED and thus shares a final destination. I think it might be desirable to have different final destinations

Re: Inconsistent handling of cryted message bodies

Personally I'd want to have a contents_category of its own for all encrypted mail, be it PGP, S/MIME or any other technology that creates crypted the message bodies. On 2013-09-07, Carsten Wolff wrote: May I jump in with the following reference[1], hoping for the unexpected event of the

Re: multi-recipient-delimiter patch

On 2014-01-29 Patrick Domack wrote: Been working with postfix 2.11 that added support for multi recipient-delimiters. I also messed around with dovecot to make it function there also, and figured, I shouldn't leave amavis out of the loop. Here is a patch that I believe is fully functional to

Re: Plans for implementing DMARC ?

Michael Storz wrote: are there any plans to implement DMARC into amavis? Likely as a SpamAssassin plugin: http://marc.info/?l=spamassassin-usersm=139885655119627 http://marc.info/?l=spamassassin-usersm=139886107621112 Mark

Re: run_av error: Insecure dependency in sprintf

Maciej, Sep 27 12:33:36 host amavis[5129]: (05129-01-2) (!)Sophos SAVI av-scanner FAILED: run_av error: Insecure dependency in sprintf while running with -T switch at /usr/local/amavis/amavisd line 3204.\n while running amavisd-new-2.8.1 (20130628) on Centos 6.4 with perl 5.10.1-131. How to

Re: amavisd-new, read_hash and problem with a dot in localpart of emailaddress

Guido, ... moreover: So we change our entry in the external File to enclose the complete Email-Address with a ' sign or a sign. Example: 'guido.kueh...@steinel.at' = 1, That's not the right syntax for a file to be read by read_hash(). The following describes the syntax as understood by

ANNOUNCE: amavisd-new-2.8.2-rc1 release candidate is available

A preview of the coming version 2.8.2 of amavisd-new is available at: http://www.ijs.si/software/amavisd/amavisd-new-2.8.2-rc1.tar.bz2 http://www.ijs.si/software/amavisd/amavisd-new-2.8.2-rc1.tar.xz Release notes are at: http://www.ijs.si/software/amavisd/release-notes.txt

Re: IPv4-mapped

Patrick, I'm having an issue with 2.8.1 and ubuntu 12.04 with mapped addresses. It seems the inet_acl isn't mapping it correctly. (!)DENIED ACCESS due to INVALID PEER IP ADDRESS:::127.0.0.1: lookup_ip_acl (inet_acl): IPv6 address [:::127.0.0.1] contains fewer than 8 fields Ugh, an

Re: Amavisd question

Alan, Here is your configuration error: $bad_header_quarantine_method = D_DISCARD; The D_DISCARD constant has a value of 0, and is one of the possible values for $final_*_destiny settings, but has no place in any $*_method. What you probably wanted is: $bad_header_quarantine_method =

Re: Using amavisd forward_method or forward_methods_by_ccast_maps to force TLS for certain domains

Tom, Sorry for delay ... vacations, catching up with work, ... We've got a large number of domains for which we filter email. Some of them have specific destinations to which they want to enforce TLS, bouncing email destined to that domain if TLS is not available. (they need to require it

Re: Missing attribute from Amavis LDAP schema for LDAP disclaimer support

Quanah, I was reading through the release notes, and it appears you did attempt to get the dynamic altermime fix into Amavis. However, it appears incomplete. release notes: - added LDAP attribute amavisDisclaimerOptions, along with its corresponding SQL field 'disclaimer_options'. It

Re: ANNOUNCE: amavisd-new-2.8.1 has been released

Quanah, It appears the fix to the amavis LDIF schema I mentioned the other day is missing? olcAttributeTypes: {46}( 1.3.6.1.4.1.15312.2.2.1.47 NAME 'amavisDisclaimerOptions' DESC 'Altermime disclaimer map data' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX

ANNOUNCE: amavisd-new-2.8.1 has been released

Version 2.8.1 of amavisd-new has been released. It is available at: http://www.ijs.si/software/amavisd/amavisd-new-2.8.1.tar.gz or: http://www.ijs.si/software/amavisd/amavisd-new-2.8.1.tar.xz amavisd-new-2.8.1 release notes COMPATIBILITY - when 0MQ (a.k.a. ZeroMQ) is used between Amavis

Re: amavisd-new-2.8.1-rc1 release candidate is available

Ralf, Thanks for trying out the new version! p0f-analyzer.pl fails here with: root@mail:/usr/src/amavisd-new-2.8.1-rc1# p0f -i eth0 'tcp dst port 25' 21 | p0f-analyzer.pl 2345 Unexpected keys - V6Only at /usr/sbin/p0f-analyzer.pl line 365 root@mail:/usr/src/amavisd-new-2.8.1-rc1#

ANNOUNCE: amavisd-new-2.8.1-rc1 release candidate is available

A long-overdue preview of a version 2.8.1 of amavisd-new is available at: http://www.ijs.si/software/amavisd/amavisd-new-2.8.1-rc1.tar.gz Release notes are at: http://www.ijs.si/software/amavisd/release-notes.txt amavisd-new-2.8.1-RC1 release notes COMPATIBILITY - when 0MQ is used

Re: amavis ldap trouble in process_request do_search

Frank, amavis 2.8.0-4.el6 I have some trouble with amavis ldap postfix ldap on CentOS 6.4 Sometimes I found: amavis[1170]: (01170-02) (!)lookup_ldap: do_search: failed: LDAP_OPERATIONS_ERROR amavis[1170]: (01170-02) (!!)TROUBLE in process_request: do_search: failed:

Re: amavis ldap trouble in process_request do_search

Quanah, See also my work on Net::LDAP. The newest releases allow turning on keepalive (default 2 hours). I also have a patch for it that, if you are on linux, allows tweaking the keepalive parameters for the Net::LDAP connection so that you can send keepalive probes much more often than

Re: OT: Sophos SSSP Protocol Specs

It is. I'm afraid you'll have to request it from Sophos. Maybe it comes with some of their products, forgot the details. Sophos SAV interface: Sophos Simple Scanning Protocol Should be in the SavSDK. Mark

Re: Mark Martinec MIA?

Checking back I found that we haven't heard from Marc in 6 months now. He's still active in the SpamAssassin channel. Yep he's MIA? Is he done playing with Amavis, or what's the score? Hello everybody, me again, still kicking! I must appologize to everybody on this list for my absence. It

Re: DKIM CVE and Amavis behavior

Quanah, There's been a lot of news recently about http://www.kb.cert.org/vuls/id/268267. Yes, I've noticed. I am curious to know if Amavis with DKIM verification enabled does the right thing in relation to test DKIM keys and DKIM keys with a small bit size (less than 1024). I know

Re: X-Amavis-Alert header format not always consistent

Antoine, it seems the X-Amavis-Alert header not always use the same formatting rule. I most cases, it looks like this : *ALERT TYPE, description* However, the 'BAD HEADER SECTION' case doesn't always include the ','. Here is a patch (2.8.0 version) that fix this little mistake (because I

Re: Spam Quarantined mail can be used as Spamassassin ham?

Nick, I understand that. My question is whether the message file, as stored is amavis spam quarantine dir, is in a format suitable for use by sa-learn. Yes, should be fine. The sa-learn will ignore X-Spam-* header fields. The presence of Delivered-To, X-Envelope-To, X-Envelope-To-Blocked

Re: amavisd-new exits unexpectedly

Rob, I run an OpenBSD mail server using postfix, amavisd-new, spamassassin, and clamav. Amavisd is configured as a before-queue content filter. I'm using the versions that come packaged with OpenBSD 5.1, namely: [...] The other day I woke up to discover that amavisd had simply exited and

Re: lost my nanny!

Len, amavisd.conf $MYHOME = '/var/db/amavis'; ^^ No nanny database /var/amavis/db/nanny.db; waiting... ^^ Stefan Jakobs wrote: /var/amavis/db/ != /var/db/amavis I'm not sure if nanny evaluates amavisd.conf. But you can edit the default

  1   2   3   4   >